Symantec: >> Endpoint Protection Manager >> 12.1.6 Security Vulnerabilities
Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allows remote authenticated users to conduct server-side request forgery (SSRF) attacks, and trigger network traffic to arbitrary intranet hosts, via a crafted request.
CVSS Score
7.7
EPSS Score
0.002
Published
2016-06-30
Race condition in the client in Symantec Endpoint Protection (SEP) 12.1 before RU6 MP5 allows local users to bypass intended restrictions on USB file transfer by conducting filesystem operations before the SEP device manager recognizes a new USB device.
CVSS Score
2.9
EPSS Score
0.001
Published
2016-06-30
Page 3